$ rpki-client -vvf rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa File: 323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa (raw, json) Hash identifier: N/VPL4fWmpZxSLtZArTK3CAnGxhdg4QVzia//OfwUKU= Subject key identifier: 17:3D:15:43:90:5B:50:2E:FF:E3:E1:8D:04:19:35:83:EB:BD:CF:9D Certificate issuer: /CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Certificate serial: 66B8A961EB5D31116308C9E41663A6F04767A77B Authority key identifier: FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa Signing time: Sun 03 May 2026 03:00:01 +0000 ROA not before: Sun 03 May 2026 02:55:01 +0000 ROA not after: Sun 02 May 2027 03:00:01 +0000 asID: 38500 IP address blocks: 2403:2700:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b8:a9:61:eb:5d:31:11:63:08:c9:e4:16:63:a6:f0:47:67:a7:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FB081C4B909CDF56184D0455B2AA1F52EBFC9293 Validity Not Before: May 3 02:55:01 2026 GMT Not After : May 2 03:00:01 2027 GMT Subject: CN=173D1543905B502EFFE3E18D04193583EBBDCF9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a7:55:9a:f6:ce:72:1b:8f:c1:8b:0a:7a:99: 9f:93:06:cf:00:16:77:ac:23:84:57:fa:f8:dc:78: d3:c2:93:81:42:94:8d:54:9d:3d:c5:a1:22:3b:0c: 24:79:a6:74:77:ed:09:1e:30:8c:cf:97:e0:0e:25: f8:df:24:55:79:46:a9:cd:4e:d5:21:34:e8:03:16: 65:7a:4a:f9:53:d3:f4:12:63:3a:7a:e1:a1:0c:3b: a1:16:c1:fc:6f:c6:62:56:a6:cd:39:95:2c:05:55: 22:72:a5:cd:e8:01:7d:c2:33:a7:2b:7d:42:9c:cf: f8:81:b3:30:fc:f0:b7:04:10:5a:91:75:27:65:03: c8:25:46:a4:d0:eb:cb:b9:ac:e6:d8:5d:88:65:71: 7a:13:1f:41:60:d1:80:e6:e7:59:1e:fe:ed:44:55: f2:79:4f:34:ab:3b:02:8f:de:b0:0b:ff:de:2b:b3: 06:1d:09:99:c2:0d:16:7f:47:42:2b:e8:2f:5b:f4: 54:e0:69:8e:ac:54:d8:54:87:c9:4e:8f:31:3c:ab: f1:33:dc:02:15:5d:3b:70:21:21:3f:d4:c5:5b:fa: 7f:3c:d7:1f:b0:52:2b:4e:94:a9:8b:79:c6:26:77: 7f:9a:93:68:19:2e:27:7f:49:79:93:91:1e:27:ea: d1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3D:15:43:90:5B:50:2E:FF:E3:E1:8D:04:19:35:83:EB:BD:CF:9D X509v3 Authority Key Identifier: keyid:FB:08:1C:4B:90:9C:DF:56:18:4D:04:55:B2:AA:1F:52:EB:FC:92:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/FB081C4B909CDF56184D0455B2AA1F52EBFC9293.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b04068f3-a75b-4764-9e80-1fa5729207fc/0/323430333a323730303a333a3a2f34382d3438203d3e203338353030.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2403:2700:3::/48 Signature Algorithm: sha256WithRSAEncryption 31:fa:24:fd:65:90:27:e5:94:8c:88:ae:b2:f6:c3:65:68:6d: 20:59:25:9c:2e:06:a8:85:a0:9e:23:da:4d:5a:ae:32:e1:19: 6c:1b:ab:22:6c:77:cf:be:34:0f:15:27:ba:20:fb:f4:32:57: a0:ad:1e:46:13:ef:9d:4a:a8:0a:9d:dd:13:14:fe:c0:23:33: 0b:75:71:15:78:fe:e4:fe:82:6b:21:80:a5:05:f5:7d:19:23: b9:8b:85:04:bc:d4:54:66:46:d1:ad:a4:f4:2f:d2:0d:a8:5d: 11:19:6d:14:9d:17:8b:34:a7:de:1e:51:b1:9c:7d:db:ca:fb: 15:57:b6:4f:36:37:a8:c2:d6:b5:b5:d4:80:81:78:31:f9:6b: 6c:03:e8:f5:03:93:1c:eb:b8:df:4e:e1:65:06:49:b5:f6:cf: fb:ac:67:07:2d:9d:07:a2:d3:7a:46:59:4d:17:1d:89:05:89: fb:56:f4:bd:ab:ee:d6:8c:e7:c1:e3:8c:a4:eb:b8:4e:ee:41: 86:56:e9:b9:05:00:8d:8b:6e:13:ce:c1:ba:39:93:1c:fe:04: 20:ce:ca:be:36:fa:9d:cd:c6:20:5c:73:06:42:df:6c:48:00: d1:c3:5b:b8:10:30:46:1b:64:27:35:fe:46:37:38:cc:47:13: bc:44:38:38 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIUZripYetdMRFjCMnkFmOm8Ednp3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkIwODFDNEI5MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJF QkZDOTI5MzAeFw0yNjA1MDMwMjU1MDFaFw0yNzA1MDIwMzAwMDFaMDMxMTAvBgNV BAMTKDE3M0QxNTQzOTA1QjUwMkVGRkUzRTE4RDA0MTkzNTgzRUJCRENGOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPp1Wa9s5yG4/Biwp6mZ+TBs8A FnesI4RX+vjceNPCk4FClI1UnT3FoSI7DCR5pnR37QkeMIzPl+AOJfjfJFV5RqnN TtUhNOgDFmV6SvlT0/QSYzp64aEMO6EWwfxvxmJWps05lSwFVSJypc3oAX3CM6cr fUKcz/iBszD88LcEEFqRdSdlA8glRqTQ68u5rObYXYhlcXoTH0Fg0YDm51ke/u1E VfJ5TzSrOwKP3rAL/94rswYdCZnCDRZ/R0Ir6C9b9FTgaY6sVNhUh8lOjzE8q/Ez 3AIVXTtwISE/1MVb+n881x+wUitOlKmLecYmd3+ak2gZLid/SXmTkR4n6tH9AgMB AAGjggI3MIICMzAdBgNVHQ4EFgQUFz0VQ5BbUC7/4+GNBBk1g+u9z50wHwYDVR0j BBgwFoAU+wgcS5Cc31YYTQRVsqofUuv8kpMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjA0MDY4ZjMtYTc1Yi00NzY0LTllODAtMWZhNTcyOTIwN2ZjLzAvRkIwODFDNEI5 MDlDREY1NjE4NEQwNDU1QjJBQTFGNTJFQkZDOTI5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9GQjA4MUM0QjkwOUNERjU2MTg0RDA0NTVCMkFBMUY1MkVCRkM5 MjkzLmNlcjCBpQYIKwYBBQUHAQsEgZgwgZUwgZIGCCsGAQUFBzALhoGFcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2IwNDA2OGYzLWE3NWItNDc2NC05 ZTgwLTFmYTU3MjkyMDdmYy8wLzMyMzQzMDMzM2EzMjM3MzAzMDNhMzMzYTNhMmYz NDM4MmQzNDM4MjAzZDNlMjAzMzM4MzUzMDMwLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJAMnAAADMA0G CSqGSIb3DQEBCwUAA4IBAQAx+iT9ZZAn5ZSMiK6y9sNlaG0gWSWcLgaohaCeI9pN Wq4y4RlsG6sibHfPvjQPFSe6IPv0MlegrR5GE++dSqgKnd0TFP7AIzMLdXEVeP7k /oJrIYClBfV9GSO5i4UEvNRUZkbRraT0L9INqF0RGW0UnReLNKfeHlGxnH3byvsV V7ZPNjeowta1tdSAgXgx+WtsA+j1A5Mc67jfTuFlBkm19s/7rGcHLZ0HotN6RllN Fx2JBYn7VvS9q+7WjOfB44yk67hO7kGGVum5BQCNi24TzsG6OZMc/gQgzsq+Nvqd zcYgXHMGQt9sSADRw1u4EDBGG2QnNf5GNzjMRxO8RDg4 -----END CERTIFICATE-----Generated at Wed May 13 05:14:56 2026 by rpki-client